Re: [Qemu-devel] [PATCH for-2.9 1/2] crypto: add 3des-ede support when using libgcrypt/nettle

All of lore.kernel.org
 help / color / mirror / Atom feed

From: "Longpeng (Mike)" <longpeng2@huawei.com>
To: "Gonglei (Arei)" <arei.gonglei@huawei.com>
Cc: "berrange@redhat.com" <berrange@redhat.com>,
	"eblake@redhat.com" <eblake@redhat.com>,
	"armbru@redhat.com" <armbru@redhat.com>,
	"qemu-devel@nongnu.org" <qemu-devel@nongnu.org>,
	"Wubin (H)" <wu.wubin@huawei.com>,
	"Zhoujian (jay, Euler)" <jianjay.zhou@huawei.com>
Subject: Re: [Qemu-devel] [PATCH for-2.9 1/2] crypto: add 3des-ede support when using libgcrypt/nettle
Date: Wed, 7 Dec 2016 17:19:38 +0800	[thread overview]
Message-ID: <5847D42A.6090400@huawei.com> (raw)
In-Reply-To: <33183CC9F5247A488A2544077AF19020DA155BFA@DGGEMA505-MBX.china.huawei.com>



On 2016/12/7 16:52, Gonglei (Arei) wrote:

>> -----Original Message-----
>> From: longpeng
>> Sent: Wednesday, December 07, 2016 4:34 PM
>> To: berrange@redhat.com; eblake@redhat.com; armbru@redhat.com;
>> Gonglei (Arei)
>> Cc: qemu-devel@nongnu.org; Wubin (H); Zhoujian (jay, Euler); longpeng
>> Subject: [PATCH for-2.9 1/2] crypto: add 3des-ede support when using
>> libgcrypt/nettle
>>
>> Libgcrypt and nettle support 3des-ede, so this patch add 3des-ede
>> support when using libgcrypt or nettle.
>>
>> Signed-off-by: Longpeng(Mike) <longpeng2@huawei.com>
>> ---
......
>> --- a/qapi/crypto.json
>> +++ b/qapi/crypto.json
>> @@ -63,6 +63,7 @@
>>  # @aes-192: AES with 192 bit / 24 byte keys
>>  # @aes-256: AES with 256 bit / 32 byte keys
>>  # @des-rfb: RFB specific variant of single DES. Do not use except in VNC.
>> +# @3des-ede: 3DES-EDE with 192 bit / 24 byte keys
> 
> Missing since 2.9 here.
> 

Okay, I will add it in V2.

>>  # @cast5-128: Cast5 with 128 bit / 16 byte keys
>>  # @serpent-128: Serpent with 128 bit / 16 byte keys
>>  # @serpent-192: Serpent with 192 bit / 24 byte keys
......
>> +    {
>> +        /* Borrowed from linux-kernel crypto/testmgr.h */
>> +        .path = "/crypto/cipher/3des-ede-ecb",
>> +        .alg = QCRYPTO_CIPHER_ALG_3DES_EDE,
>> +        .mode = QCRYPTO_CIPHER_MODE_ECB,
>> +        .key =
>> +            "0123456789abcdef5555555555555555"
>> +            "fedcba9876543210",
>> +        .plaintext =
>> +            "736f6d6564617461",
>> +        .ciphertext =
>> +            "18d748e563620572",
>> +    },
>> +#endif
> 
> Pls adds the CTR mode test case as well.
> 

Okay!

But I confuse with the 3DES's iv length now. I saw that cbc(3des-ede)'s iv-len
can be 8 or 16 bytes, and ctr(3des-ede)'s iv-len is 24 bytes(according to
linux-kernel crypto/testmgr.h).

However, I think qcrypto_cipher_get_iv_len() cannot distinguish a cipher alg
with more than one iv-len.

Daniel, do you have any idea ?

> You'd better split the patch set into two patches so that Denial can take this one.
> and I can take the patch 2.
> 

Okay, thanks.

> Thanks for your work.
> 
> -Gonglei
> 
>>      {
>>          /* RFC 2144, Appendix B.1 */
>>          .path = "/crypto/cipher/cast5-128",
>> --
>> 1.8.3.1
>>
> 
> 
> .
> 


-- 
Regards,
Longpeng(Mike)

next prev parent reply	other threads:[~2016-12-07  9:20 UTC|newest]

Thread overview: 9+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2016-12-07  8:33 [Qemu-devel] [PATCH for-2.9 0/2] crypto: add 3des-ede support Longpeng(Mike)
2016-12-07  8:33 ` [Qemu-devel] [PATCH for-2.9 1/2] crypto: add 3des-ede support when using libgcrypt/nettle Longpeng(Mike)
2016-12-07  8:52   ` Gonglei (Arei)
2016-12-07  9:19     ` Longpeng (Mike) [this message]
2016-12-07  9:21       ` Longpeng (Mike)
2016-12-07  9:43       ` Daniel P. Berrange
2016-12-07  9:37   ` Daniel P. Berrange
2016-12-07  9:46     ` Longpeng (Mike)
2016-12-07  8:33 ` [Qemu-devel] [PATCH for-2.9 2/2] cryptodev: add 3des-ede support Longpeng(Mike)

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=5847D42A.6090400@huawei.com \
    --to=longpeng2@huawei.com \
    --cc=arei.gonglei@huawei.com \
    --cc=armbru@redhat.com \
    --cc=berrange@redhat.com \
    --cc=eblake@redhat.com \
    --cc=jianjay.zhou@huawei.com \
    --cc=qemu-devel@nongnu.org \
    --cc=wu.wubin@huawei.com \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.